Auditor Global IT Audit

The Auditor, Global IT is responsible for assessing the adequacy of Global Information Technology security and controls for applications and infrastructure throughout Abbott’s international and domestic organizations. The IT auditor will execute audit projects using a risk-based approach to help ensure effective testing coverage. They will identify control gaps and other areas of risk exposure related to controls within IT processes and deliver achievable, meaningful recommendations for management to mitigate the identified risks.

The individual should have the demonstrated ability to communicate effectively, present professionally, and work well with the highest level of Corporate and Division management as well as his/her peer group.

What You’ll Do

• Execute Information Systems audits throughout Abbotts international and domestic organizations.
• Assess the design and development of security solutions and their adherence to applicable policies and comply with information security requirements.
• Prepare and present audit findings to senior management.
• Maintain comprehensive historical audit work paper documentation that fully supports reported audit results, leveraging established department tools and standards.
• Proactively communicate with key stakeholders regarding audit status, findings and other relevant issues.
• Stay abreast of current and emerging security risks. Research new technologies, understand existing processes, and reference recognized standards and frameworks.
• Work collaboratively with others on the Corporate Audit team to proactively assess organizational IT risks and ensure effective audit coverage.
• Identify control gaps and other areas of heightened risk exposure related to governance, risk management and internal controls within IT processes.
• Design and deliver achievable meaningful recommendations for management to mitigate the identified risks.
  
  

• BA/BS degree in Business, Computer Science, Management Information Systems or related field, or equivalent practical experience.
• 1.5-3+ years of related experience with a top-tier consulting or public accounting firm in one of the following two areas required:
• Execution of Information Systems audits, including Application, Platform or General IT Controls; or conducting information security assessments or implementing information security controls.
• Strong interpersonal and communication skills are required.
• 0-10% travel to Abbotts International and Domestic locations required.
  
  

• Experience with auditing major ERP systems (i.e. SAP)
• Experience with auditing IaaS, PaaS, SaaS services and solutions
• Experience with SOX audits and compliance requirements
• Deep insight of best practice standards and frameworks, such as ISO 27001/2 and NIST.
• Understanding of network and system security technology and practices across major-computing areas.
• Experience with Technology Risk Management / IT Audit function in Enterprise organizations.
• Certifications such as HCISPP, CHPS, CISA, CISSP, CISM, CRISC, CIPP.
• Manufacturing and/or international business experience.
• Foreign language skills.